The defaults deny all permissions to everyone. They should be reasonable ones; for instance "Administrator" should have all permissions, "Author" should be able to create and edit content, and "Viewer" should only be able to view content.